Report - www.genaikerr.com/hynv4d.tar

Report Overview

Submitted URL
www.genaikerr.com/hynv4d.tar
IP
160.153.136.3
ASN
#21501 Host Europe GmbH
Submitted
2022-09-11 03:13:40
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
14

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
genaikerr.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.1 kB	69 kB	160.153.136.3
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	978 B	2.7 kB	95.101.11.115
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.godaddy.com	698	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	328 B	2.3 kB	192.124.249.22
img1.wsimg.com	9893	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	19 kB	394 kB	104.84.152.58
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
events.api.secureserver.net	125179	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.5 kB	1.4 kB	104.84.152.58
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	52.13.69.101
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	45 kB	34.120.237.76
cdn.reamaze.com	24072	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	369 B	368 B	172.67.28.250
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.36
www.genaikerr.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	694 B	390 B	160.153.136.3
img6.wsimg.com	15438	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	808 B	20 kB	104.84.152.58
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.49

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-11	medium	www.genaikerr.com/hynv4d.tar	Malware
2022-09-11	medium	genaikerr.com/hynv4d.tar	Malware
2022-09-11	medium	genaikerr.com/sw.js	Malware
2022-09-11	medium	genaikerr.com/privacy-policy	Malware
2022-09-11	medium	genaikerr.com/my-story	Malware
2022-09-11	medium	genaikerr.com/	Malware
2022-09-11	medium	www.genaikerr.com/hynv4d.tar	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (33)

	URL	Size	First Seen	Last Seen
	img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-navigationDrawer-27f5f1f5.js	221 B	2023-03-07	2024-04-22
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-navigationDrawer-27f5f1f5.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:03 Last Seen2024-04-22 11:27:48 Times Seen7015 Hash 8f12765eb30fbdcfcdc116d13f7fc272 506e45b7d3930756eacce0dad449a3c8cdb3eac6 265995eb76326e95613750f6f6570b850f5c22280d262de9b9632a16ceb98b9b Loading...

	img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_commonjsHelpers-758665cc.js	960 B	2023-03-07	2024-04-05
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_commonjsHelpers-758665cc.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:55 Last Seen2024-04-05 07:51:35 Times Seen136 Hash 894d1fecf13beb6804e454d74bab4fc5 c30c7295cb3ed564378e9a76bc7d4049cc0cb2c6 6a5073ecd65b21a2428f0bf47e80529969efe3635cf67ad6107794313ee2a81a Loading...

	genaikerr.com/hynv4d.tar	154 B	2023-03-07	2024-04-22
Pretty URL genaikerr.com/hynv4d.tar IP 160.153.136.3 ASN #21501 Host Europe GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-22 11:27:48 Times Seen3996 Hash 40a1737d28c12611137249a2118038d7 81da46f20956f278eb1f1433f35b61d85a7d5c67 6e79ac7a4904f95c025f362d6be773336bb625238220bff4f726a8f3c5297ac1 Loading...

	img1.wsimg.com/blobby/go/de353c41-c1e8-419f-9a2a-282b38e66838/gpub/e82f78fbfab12b80/script.js	23 kB	2023-03-07	2023-03-07
Pretty URL img1.wsimg.com/blobby/go/de353c41-c1e8-419f-9a2a-282b38e66838/gpub/e82f78fbfab12b80/script.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:35:50 Last Seen2023-03-07 14:35:50 Times Seen1 Hash 45f77f29d344c11e056da289513970fb 9230f0f4b97bb7e8d8d3ee8c659b6e8ea3cdfbc8 b8956bf33d505d21a6bfb5def4fe3c7874ce5e210eb16d5aaa38c91eb26db768 Loading...

	img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.25.3.js	297 kB	2023-03-07	2024-04-05
Pretty URL img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.25.3.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:18 Last Seen2024-04-05 07:51:35 Times Seen13 Hash f6ef3c7b1384d0489cb01159cbb8dfb7 ae574898116bd0a93818b4cef5d48c17fd504d82 0b19efcf4ab372d8279466e10ab084a2aec6a8a2f4a4305e92b063b0fdec0b5f Loading...

	img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-layout27-Theme-publish-Theme-426a6752.js	17 kB	2023-03-07	2024-03-08
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-layout27-Theme-publish-Theme-426a6752.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:35 Last Seen2024-03-08 07:03:21 Times Seen38 Hash 44e335030da6dc3f098e688fdf6829bb 56b389beee7009639590f5adffcf80e7f2e6923f 516e52f7dd813e423571d4271b38d68a063553a03caeccb3f567522bd54b8dae Loading...

	genaikerr.com/hynv4d.tar	231 B	2023-03-07	2024-04-19
Pretty URL genaikerr.com/hynv4d.tar IP 160.153.136.3 ASN #21501 Host Europe GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-19 05:54:19 Times Seen1020 Hash ef579d749390025df5cf4591d8aed786 40803c584b04f133b1ce2a501655ee9ab508bb4a 1c5e109e877d2fe54bb59f2e94dbceed3a83075776aa3447f05b4e20b8bef500 Loading...

	img1.wsimg.com/blobby/go/static/radpack/@widget/MESSAGING/bs-Component-3fa47963.js	14 kB	2023-03-07	2024-04-19
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@widget/MESSAGING/bs-Component-3fa47963.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-19 07:35:04 Times Seen866 Hash e135455abac1e365c75acb29427be2bd 386b236dc493d0ebe7827b2fd8897cc9df4fe222 88c66fb773f05f8a1b9ea9092cde47fd6204eb3d3e5ef91f8223bd8a62339b40 Loading...

	img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-index2-5a810c82.js	1.4 kB	2023-03-07	2024-04-19
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-index2-5a810c82.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:55 Last Seen2024-04-19 06:37:29 Times Seen1157 Hash da82f14f261b7847fc0bc55dac30a9b3 94d7edacb4f425a3cb1e6b7b70301a60027e3af8 03f278836505e268d8b286774cf646016c5cc65bf893b7541be1a2a63cc66d4c Loading...

	img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-searchFormLocations-c86f2a99.js	304 B	2023-03-07	2024-04-22
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-searchFormLocations-c86f2a99.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-22 11:27:48 Times Seen7111 Hash daa79ad7558674f6a12d962abf47f2f6 03eea0ebebd11ec14cfa5a651eb0aca2604829a7 604281887cd770ed21601933e9636a7a9c8a57a30d7d796ae7d760eef64d5089 Loading...

	img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-LinkAwareComponent-c879a9d1.js	1.9 kB	2023-03-07	2024-04-19
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-LinkAwareComponent-c879a9d1.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-19 05:56:00 Times Seen126 Hash db9b98d640eba155278db0bbaa83050d 25f72d93fe64e2b9a398c2d74d6ec747533e613b 4666b9bd872ebf01ad511b5b7628c5e19362aa01b05a6edc2a266527780e1865 Loading...

	img1.wsimg.com/tcc/tcc_l.combined.1.0.6.min.js	46 kB	2023-03-07	2023-10-15
Pretty URL img1.wsimg.com/tcc/tcc_l.combined.1.0.6.min.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:41 Last Seen2023-10-15 17:43:59 Times Seen9 Hash 362d20193a8fed115f99b16a157b7fc4 011964518b319a5aa479bf5c38bb8e15dd56138e 6cb0efedc1729d965016a35584cb00b03aa46e1a5e170f4b3ce092c7c3e99ec7 Loading...

	img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-overlayTypes-e1dbe765.js	437 B	2023-03-07	2024-04-19
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-overlayTypes-e1dbe765.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-19 19:38:19 Times Seen7038 Hash 21ad22788e6caa18a4e9e57f7372b108 50ebdd2452193beab7d1899f788fbbf32d90dd55 0fe26f07b9e5d49590f55d31cbc381ca9337850f89b09940e3b384fcd6d26464 Loading...

	img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-dataAids-6a839d53.js	1.9 kB	2023-03-07	2024-04-22
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-dataAids-6a839d53.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-22 11:27:48 Times Seen7089 Hash edc15ad5daac3cfa744bffdb1e0174be e314a5ca702d0e77b2c2c023addade266ea223b2 3b54aeacfda01be53800632989a82f6f5a7f92e927159a37a4324b38d3dffef8 Loading...

	img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_rollupPluginBabelHelpers-92db7618.js	565 B	2023-03-07	2024-04-05
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_rollupPluginBabelHelpers-92db7618.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:03 Last Seen2024-04-05 07:51:35 Times Seen73 Hash 95e155e942e2f3d810d854bd7baf8f04 53e22d5d205cfc51caca14fd1ea3243657b8ddee 897a8eae55815ac35bef8d185781dac77b2ea64000ac0160bf8294b4da821bd2 Loading...

	img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_react_commonjs-external-3d5a31a2.js	266 B	2023-03-07	2024-04-05
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_react_commonjs-external-3d5a31a2.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:55 Last Seen2024-04-05 07:51:35 Times Seen136 Hash 889d83416d141ae9c1e8e3eb5c4f68c0 7610d6715ab006e9edbf288a4998603ce724b982 a4e27234e0ab2fe43d9be026b4d681da6e11025895d1c766324811bd0eb7e50a Loading...

	img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-loaders-fffeeba5.js	3.1 kB	2023-03-07	2024-04-22
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-loaders-fffeeba5.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-22 11:27:48 Times Seen6459 Hash 852cbc5322260e00b44f2c682f88b2c7 bcaf229e6134f43eb5f974c9891e4d16faf1d344 bae437dbefe58377d88c9d579db7c59f4202f3fbf88866d0005fb375be6b2cd7 Loading...

	img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-minimalSocialIconPack-367b65a4.js	20 kB	2023-03-07	2024-04-19
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-minimalSocialIconPack-367b65a4.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:35 Last Seen2024-04-19 05:56:00 Times Seen1097 Hash 5fd30bb38eba06e3522ae28610ac8c74 b9fa328b098321e7c7aabc154a2135dc165d25f7 a94e9e0d7e80fb8129f6c33f78f6b03f08c2eb5722870ccfa7cc2893190c9c20 Loading...

	img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/common/constants/form/formIdentifiers-8d1eb835.js	421 B	2023-03-07	2024-04-05
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/common/constants/form/formIdentifiers-8d1eb835.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:55 Last Seen2024-04-05 07:51:35 Times Seen102 Hash ec47357ab58887161e840b985bc1cc3f 351a33eaa9599989225dd5919cd43ecd18b5f2a3 a14bdaafef643e9da989fa4fd96f73fb35ce92be6e1dd12ac47c14d30b146a89 Loading...

	img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/common/constants/traffic2-f4096148.js	652 B	2023-03-07	2024-04-05
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/common/constants/traffic2-f4096148.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-05 07:51:35 Times Seen136 Hash 56b37779e560b1f33dae335fcdf417e5 cc922dd671fc9c56e8aae4fe3d4f91b294799785 402d9963c41519360f378b1103a448e93153cf980c92194547f51c706ec45ce1 Loading...

	img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-index-d15d4cb0.js	876 B	2023-03-07	2024-04-19
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-index-d15d4cb0.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:55 Last Seen2024-04-19 06:37:29 Times Seen1159 Hash f806faab29346709aa36f154927b3ac6 26a0b7ad2b844f2318229738927519a822d93445 df2bb9597a554b46bd807cfd97ec6e3f7194ccc218b95d7f1e899657c1cf9fcc Loading...

	img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/ColorSwatch-fad18f03.js	1.3 kB	2023-03-07	2024-04-05
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/ColorSwatch-fad18f03.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:55 Last Seen2024-04-05 07:51:35 Times Seen135 Hash 54f17c61775c71ad74e89f6ca7d47649 54ffc400669331ad6cfb2c97f73d779a6af14b0f 661d4f07da2beafd9ec00bfe44d955375c809c5f5c014b64cf5595c342b8800e Loading...

	img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-FlyoutMenu-Component-266b929e.js	3.3 kB	2023-03-07	2024-04-19
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-FlyoutMenu-Component-266b929e.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:55 Last Seen2024-04-19 05:56:00 Times Seen175 Hash d2f3f3bb13567c7c3ba8c50de05a8272 e96c9c5245969078f3cf6b4b055e6ca89056c1ed f7b54b29718e20c7deb19de55648211d23a008becc9ad6bfde01a72a09072b2b Loading...

	img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-Toggle-bde2cb32.js	2.4 kB	2023-03-07	2024-04-19
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-Toggle-bde2cb32.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:03 Last Seen2024-04-19 05:56:00 Times Seen114 Hash 70bc240b39fd393f6e3003cc69e4fe73 b69b4a25e3eb749adfd1e13224fc59dc73b196ed 9ce79703bf9ef25c61ba4feed40992772b9231110f6aab72b714d9517219b3f9 Loading...

	img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/Recaptcha/badge-a479b038.js	557 B	2023-03-07	2024-04-05
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/Recaptcha/badge-a479b038.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:55 Last Seen2024-04-05 07:51:35 Times Seen138 Hash 8857679c4bd7c2c9238416f452bed34f aa38692cfd70d09cc4f7ad873c00b27c5d0b1b13 7584a9b5afa3ef8d191200e7c1d180cc34b03a05f453fb95d2a60ed20066990f Loading...

	img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-humanisticFilled-231afaba.js	12 kB	2023-03-07	2024-04-19
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-humanisticFilled-231afaba.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:55 Last Seen2024-04-19 06:37:29 Times Seen562 Hash 9f94046aea26739ac8888a6d3ed17e16 9ad04a9430086b1a1a403d9fb0485174393eb8bc 5712a0dcf37ac601a9e017fba9f9276c9206a730adf495186421af66d4b3f49e Loading...

	img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/interopRequireDefault-112e3bdc.js	338 B	2023-03-07	2024-04-05
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/interopRequireDefault-112e3bdc.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:55 Last Seen2024-04-05 07:51:35 Times Seen138 Hash 11ccc819361ff3f58653d84601c90234 0b4df249b8109cba53467bfd598ed17183bc1b0d 6e1880867f402b6bfd7089b2d6f9b387bc6fdcbfb7a67e95486a5bc5696c3e16 Loading...

	img1.wsimg.com/traffic-assets/js/tccl-tti.min.js	25 kB	2023-03-07	2024-02-02
Pretty URL img1.wsimg.com/traffic-assets/js/tccl-tti.min.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:41 Last Seen2024-02-02 18:24:37 Times Seen8238 Hash ce554d2333f3801abafb32da18213ff7 ef2b32494849244d9b9d8c23178e082cec9eab7f 6e74c12390bdb48bf5b0bb295ceed4f68add11467d2472d983a42e3023ecf312 Loading...

	cdn.reamaze.com/assets/reamaze-godaddy-loader.js	558 B	2023-03-07	2024-04-19
Pretty URL cdn.reamaze.com/assets/reamaze-godaddy-loader.js IP 172.67.28.250 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-19 05:54:19 Times Seen521 Hash 29fcf11902728829de4a2413eba40216 d707fbff1f6265fb2da7204c5f2d2bd528134990 eff1a472910977522d14647f2141fade22114f49c698f9919e598433661ea76b Loading...

	img1.wsimg.com/blobby/go/de353c41-c1e8-419f-9a2a-282b38e66838/gpub/99261ebf98d93f64/script.js	60 kB	2023-03-07	2023-03-07
Pretty URL img1.wsimg.com/blobby/go/de353c41-c1e8-419f-9a2a-282b38e66838/gpub/99261ebf98d93f64/script.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:35:50 Last Seen2023-03-07 14:35:50 Times Seen1 Hash cd87c1dec336410582215d9d8f77e7f3 7483ff51ac23073898094a44ecc0c346cbb2f236 4e8e3243110921df2a5a2ed7ae8a257badc82d91e650f1acebd0d5ae0b0a718e Loading...

	img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-_rollupPluginBabelHelpers-5d5d5aa3.js	563 B	2023-03-07	2024-04-05
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-_rollupPluginBabelHelpers-5d5d5aa3.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-05 07:51:35 Times Seen99 Hash a520cd4748a46d1b83fb4f4d7d1fefa8 1ca350d69e8298baba55d98f28a314ac6218908c f5b4048db6e55f44bf509f8a2ec1ba2056ee7fb04bdbfd401d6951177e01b6fe Loading...

	unknown	0 B	2023-03-07	2024-04-24
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-24 05:01:00 Times Seen37030685 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/Carousel-d4bbd8a7.js	23 kB	2023-03-07	2024-04-05
Pretty URL img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/Carousel-d4bbd8a7.js IP 104.84.152.58 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:03 Last Seen2024-04-05 07:51:35 Times Seen27 Hash e579cd3f9ea8e112675b529fc85417c3 cfb15a5b54ab654bcc5f39552ebc9e24d0500e4f 45fdf429ea31a8420360906b107e29613cf94ac1b2def6c7bf24076c65ee9346 Loading...

HTTP Transactions (70)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.36

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 11 Sep 2022 03:07:14 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: iZ8bnqKtSzETQTG5BU-vsDneMfwombyTSWgcyUE0nszXDG3vMzsdEQ==
Age: 375

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8598
Expires: Sun, 11 Sep 2022 05:36:47 GMT
Date: Sun, 11 Sep 2022 03:13:29 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.49

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.49:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 10 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tVh9d5ukWqxQ-EJ-7hawAag0LZxxFVvvcqKuogBEgOAH4_0CFVsVdQ==
age: 71777
X-Firefox-Spdy: h2

www.genaikerr.com/hynv4d.tar

160.153.136.3

301 Moved Permanently

0 B

URL HTTP/1.1
www.genaikerr.com/hynv4d.tar
IP
160.153.136.3:0
ASN
#21501 Host Europe GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /hynv4d.tar HTTP/1.1
Host: www.genaikerr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
location: https://genaikerr.com/hynv4d.tar
Vary: Accept-Encoding
Server: DPS/1.13.2
X-SiteId: 4000
Set-Cookie: dps_site_id=4000; path=/
Date: Sun, 11 Sep 2022 03:13:29 GMT
Connection: keep-alive
Keep-Alive: timeout=5
Transfer-Encoding: chunked

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 03:13:29 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.godaddy.com/

192.124.249.22

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.22:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
ea1dc60fc613b000abd49f5c27f90055
be0b71d9b688a0e026a52fe4bfd0b27f79d3b58e
c8235f71968f64ef20537e9d4e485f02b71781e8c39659670662480f3f484ab9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 11 Sep 2022 03:13:29 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 10 Sep 2022 19:31:24 GMT
Expires: Sun, 11 Sep 2022 19:31:24 GMT
ETag: "be0b71d9b688a0e026a52fe4bfd0b27f79d3b58e"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

img1.wsimg.com/tcc/tcc_l.combined.1.0.6.min.js

104.84.152.58

302 Found

0 B

URL HTTP/2
img1.wsimg.com/tcc/tcc_l.combined.1.0.6.min.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tcc/tcc_l.combined.1.0.6.min.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
content-length: 0
location: https://img1.wsimg.com/traffic-assets/js/tccl.min.js
cache-control: max-age=1800
expires: Sun, 11 Sep 2022 03:43:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.36

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 11 Sep 2022 02:56:07 GMT
Expires: Sun, 11 Sep 2022 03:16:51 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xS8xeveSYVQpYCzT50wMFjJbRX5Fhzg8oielqm9_4s2nbZN-gNjPZg==
Age: 1043

img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2

104.84.152.58

200 OK

17 kB

URL HTTP/2
img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Size
17 kB (16740 bytes)
Hash
e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681

HTTP Headers

GET /gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 16740
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2

104.84.152.58

200 OK

16 kB

URL HTTP/2
img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 16372, version 1.0\012- data
Size
16 kB (16372 bytes)
Hash
e45478d4d6f15dafda1f25d9e0fb5fa1
52cb490cd0ee4442ede034085cda9652b206f91c
d1a17abb1a999842fe425e1a4ace9d90f9c18f3595c21a63d89f0611b90cfd72

HTTP Headers

GET /gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2 HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 16372
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Mon, 15 Aug 2022 18:14:45 GMT
content-type: font/woff2
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4gaVI.woff2

104.84.152.58

200 OK

17 kB

URL HTTP/2
img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4gaVI.woff2
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 16696, version 1.0\012- data
Size
17 kB (16696 bytes)
Hash
851255bc75bbde5522202bc66bca47ad
aa7ef04a80507e95574269c293361d9c89d76dc1
e7cba74abd33c24cef9652915738c63c891c517e3f407d0894f11a7aec9c015e

HTTP Headers

GET /gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4gaVI.woff2 HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 16696
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Mon, 15 Aug 2022 18:16:22 GMT
content-type: font/woff2
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.25.3.js

104.84.152.58

200 OK

89 kB

URL HTTP/2
img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.25.3.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (63425)
Size
89 kB (89290 bytes)
Hash
2b13b0761e9c2b939e14b97e665be6b1
58c5262224261aa9797ebaa656382a58b7650751
30ab9d4ec5125d4677c4868dfe5f66544641b4aac1a0d12762aaceef8f770abb

HTTP Headers

GET /ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.25.3.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 89290
x-version: 0.7.1+sha-f8fdc16
etag: "f6ef3c7b1384d0489cb01159cbb8dfb7"
last-modified: Thu, 28 Jul 2022 20:50:45 GMT
x-amzn-trace-id: Root=1-62e2f6a4-07bf41ce1647ef1917ff0f27
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/gfonts/s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2

104.84.152.58

200 OK

17 kB

URL HTTP/2
img1.wsimg.com/gfonts/s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 16588, version 1.0\012- data
Size
17 kB (16588 bytes)
Hash
6a93e73463e9f1b7c7b41c52c93843c5
48d5ed2bcc9c9c5c4182ae8957e5cef207cdfcbc
54eb546ba2203d87ad9a38ffdb92fdfed9733e08239dbea692a1ca059a287480

HTTP Headers

GET /gfonts/s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2 HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 16588
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Thu, 21 Apr 2022 16:38:59 GMT
content-type: font/woff2
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/gfonts/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2

104.84.152.58

200 OK

36 kB

URL HTTP/2
img1.wsimg.com/gfonts/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 35764, version 1.0\012- data
Size
36 kB (35764 bytes)
Hash
60f23230f1a8d5c3b7d25b73f5b5ce23
ed08ada85d017893b9bcb8224e99154c6708f5d2
22b6cdc450204c1cb32b31e679d812fea1c17ac506a7b78daeb12bd0ab25fde8

HTTP Headers

GET /gfonts/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 35764
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Mon, 18 Jul 2022 19:06:36 GMT
content-type: font/woff2
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk5hkWVAewA.woff2

104.84.152.58

200 OK

18 kB

URL HTTP/2
img1.wsimg.com/gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk5hkWVAewA.woff2
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 17872, version 1.0\012- data
Size
18 kB (17872 bytes)
Hash
3e0274defdd8ec90c011bb8f28b73025
98832b18c1ce0c358485b6c27222af333c5c4ce1
58b668040ea1899d0c45dd1d0dd640358914869b28f47e33b0a7f076ddee8263

HTTP Headers

GET /gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk5hkWVAewA.woff2 HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 17872
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Mon, 15 Aug 2022 18:14:38 GMT
content-type: font/woff2
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2

104.84.152.58

200 OK

18 kB

URL HTTP/2
img1.wsimg.com/gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 17820, version 1.0\012- data
Size
18 kB (17820 bytes)
Hash
3d5107abaf7bf4df5478bd04625c0929
b04d394caabf6ea3e500b74781dc2bfd54f3c18d
9ad0a22b0c58240a7a92b4c01aa31f39a5918dea6a8fdfa77e63042abc4fca31

HTTP Headers

GET /gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 17820
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Mon, 15 Aug 2022 18:13:12 GMT
content-type: font/woff2
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVI.woff2

104.84.152.58

200 OK

17 kB

URL HTTP/2
img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVI.woff2
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 16748, version 1.0\012- data
Size
17 kB (16748 bytes)
Hash
62d24b94de2fd801742f49d8c6306ba2
d4b841b136adad3051b58a66692f7c5942cf6deb
1b2f88142c19df560f487368810bba2d41c5d6948df584abaa2e0091c0b2245b

HTTP Headers

GET /gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVI.woff2 HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 16748
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Mon, 15 Aug 2022 18:14:43 GMT
content-type: font/woff2
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

genaikerr.com/hynv4d.tar

160.153.136.3

404 Not Found

29 kB

URL HTTP/2
genaikerr.com/hynv4d.tar
IP
160.153.136.3:0
ASN
#21501 Host Europe GmbH

File type
data
Size
29 kB (29139 bytes)
Hash
b7b3233a6cf2a15ba1410871c32d1158
85b958d7a0b7a5b81314e4dec201f9ffb199aeee
12acbb733177cd0e8d39a234a08d65440ff39042b82badcbed800603f6b01531

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /hynv4d.tar HTTP/1.1
Host: genaikerr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 404 Not Found
link: <//img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.25.3.js>; rel=preload; as=script; crossorigin,<https://img1.wsimg.com/gfonts/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk5hkWVAewA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0RkyFjWVAewA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVI.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4gaVI.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2>; rel=preload; as=font; crossorigin,<https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin
cache-control: max-age=30
content-security-policy: frame-ancestors 'self'
content-type: text/html;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
server: DPS/1.13.2
x-siteid: 4000
set-cookie: dps_site_id=4000; path=/; secure
date: Sun, 11 Sep 2022 03:13:29 GMT
X-Firefox-Spdy: h2

img1.wsimg.com/traffic-assets/js/tccl.min.js

104.84.152.58

302 Found

0 B

URL HTTP/2
img1.wsimg.com/traffic-assets/js/tccl.min.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /traffic-assets/js/tccl.min.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Referer: https://genaikerr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
content-length: 0
location: https://img6.wsimg.com/wrhs/362d20193a8fed115f99b16a157b7fc4/tccl.min.js
cache-control: max-age=1800
expires: Sun, 11 Sep 2022 03:43:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
36fe04277220227ba5ecfe7d2ff1d9d9
2eb9f6560336248cc45c1cd66d87505b5ebdf5d4
94f8f2f8f3b67db18825ea48740ff0ce218d7156fe851d6b023ef43b6bee4f7f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4013
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 03:13:30 GMT
Last-Modified: Sun, 11 Sep 2022 02:06:37 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

img6.wsimg.com/wrhs/362d20193a8fed115f99b16a157b7fc4/tccl.min.js

104.84.152.58

200 OK

11 kB

URL HTTP/2
img6.wsimg.com/wrhs/362d20193a8fed115f99b16a157b7fc4/tccl.min.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (45500)
Size
11 kB (11155 bytes)
Hash
1ac00b5d5abfa64175a140de3f29a8e2
c07c5611cfff3ec4c7034134e4148f177242908c
65198366099c4eea2ed8a4dbe30fbb7896435a3505c5265260715d3385058378

HTTP Headers

GET /wrhs/362d20193a8fed115f99b16a157b7fc4/tccl.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://genaikerr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "362d20193a8fed115f99b16a157b7fc4"
last-modified: Mon, 11 Apr 2022 14:15:53 GMT
vary: Accept-Encoding
x-edgeconnect-midmile-rtt: 15
x-edgeconnect-origin-mex-latency: 135
x-amz-id-2: 73c+ZpWNgBh9xtilh6Nj22iH/BmUfkHwAgj9PgWHmvdTmSCUhi96da6Ell5SKHaif06RANK80zY=
x-amz-request-id: N5JSXGJTVEFZM8E9
x-amz-server-side-encryption: AES256
x-amz-version-id: Z0H0F1CdjRUI_nRMydHHi17Rv0HOw5tB
content-length: 11155
x-edgeconnect-cache-status: 1
cache-control: max-age=31536000
date: Sun, 11 Sep 2022 03:13:30 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/isteam/ip/de353c41-c1e8-419f-9a2a-282b38e66838/blob-0002.png/:/rs=w:200,h:200,cg:true,m/cr=w:200,h:200/qt=q:95

104.84.152.58

200 OK

2.8 kB

URL HTTP/2
img1.wsimg.com/isteam/ip/de353c41-c1e8-419f-9a2a-282b38e66838/blob-0002.png/:/rs=w:200,h:200,cg:true,m/cr=w:200,h:200/qt=q:95
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
2.8 kB (2780 bytes)
Hash
4bfd219077b07fe4a4f7adac68bf3f86
d5d57455523305263bfa2e8ac9fb6f9e139258cb
c27cf3bc8dc288445ec3f00406b7c7663a3ca88995868ab7452529b8cf2012e7

HTTP Headers

GET /isteam/ip/de353c41-c1e8-419f-9a2a-282b38e66838/blob-0002.png/:/rs=w:200,h:200,cg:true,m/cr=w:200,h:200/qt=q:95 HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/webp
content-length: 2780
x-version: 0.4.4+sha-cbf667a
x-track-origin-referer: https://genaikerr.com/
access-control-request-method: GET
access-control-max-age: 864000
etag: 2466278049
x-width: 200
x-height: 200
x-isteam-meta: {"orientation":1}
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
edge-cache-tag: /isteam/ip/de353c41-c1e8-419f-9a2a-282b38e66838/blob-0002.png/:/rs=w:200,h:200,cg:true,m/cr=w:200,h:200/qt=q:95
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/isteam/ip/de353c41-c1e8-419f-9a2a-282b38e66838/blob-0002.png/:/rs=w:104,h:104,cg:true,m/cr=w:104,h:104/qt=q:95

104.84.152.58

200 OK

1.5 kB

URL HTTP/2
img1.wsimg.com/isteam/ip/de353c41-c1e8-419f-9a2a-282b38e66838/blob-0002.png/:/rs=w:104,h:104,cg:true,m/cr=w:104,h:104/qt=q:95
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
1.5 kB (1456 bytes)
Hash
b4779e0feec3208e36b092c4f5216c9e
890e91fca66da5819cf08d2c208a52dd4d0bb69d
dbc34ddeb342f94f0fd72bdc68f3b2f12f3d28884d5ff93307326f07a6cb0e28

HTTP Headers

GET /isteam/ip/de353c41-c1e8-419f-9a2a-282b38e66838/blob-0002.png/:/rs=w:104,h:104,cg:true,m/cr=w:104,h:104/qt=q:95 HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 1456
x-version: 0.4.4+sha-cbf667a
x-track-origin-referer: https://genaikerr.com/
access-control-request-method: GET
access-control-max-age: 864000
etag: 3027864217
x-width: 104
x-height: 104
x-isteam-meta: {"orientation":1}
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
edge-cache-tag: /isteam/ip/de353c41-c1e8-419f-9a2a-282b38e66838/blob-0002.png/:/rs=w:104,h:104,cg:true,m/cr=w:104,h:104/qt=q:95
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.13.69.101

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.13.69.101:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BVI/nLBq3FfOhfdPEvK8Zg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: p1gvO/S2WqrRUyd6WlM3Qzo0IjQ=

img1.wsimg.com/blobby/go/de353c41-c1e8-419f-9a2a-282b38e66838/gpub/e82f78fbfab12b80/script.js

104.84.152.58

200 OK

5.9 kB

URL HTTP/2
img1.wsimg.com/blobby/go/de353c41-c1e8-419f-9a2a-282b38e66838/gpub/e82f78fbfab12b80/script.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (5601)
Size
5.9 kB (5928 bytes)
Hash
2de76ddb97ae1cfb4f8bc7dc43f0d19b
9fb2c0735d4ed190719f58017f86c5e1713b5333
4a601d4c24680431e5add3280408d84f68f850c0741c5ef1b4eff7bf1de2043c

HTTP Headers

GET /blobby/go/de353c41-c1e8-419f-9a2a-282b38e66838/gpub/e82f78fbfab12b80/script.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 5928
x-version: 0.7.1+sha-f8fdc16
etag: "45f77f29d344c11e056da289513970fb"
last-modified: Wed, 03 Aug 2022 04:54:46 GMT
x-amzn-trace-id: Root=1-62e9ff95-34c369710b015e3077639e4f
x-forwarded-port: 443
x-forwarded-for: 64.202.160.104
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/de353c41-c1e8-419f-9a2a-282b38e66838/gpub/99261ebf98d93f64/script.js

104.84.152.58

200 OK

15 kB

URL HTTP/2
img1.wsimg.com/blobby/go/de353c41-c1e8-419f-9a2a-282b38e66838/gpub/99261ebf98d93f64/script.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (50758)
Size
15 kB (14674 bytes)
Hash
5db441fbb5c18a2ecc57ade306c05b24
5b846995d02c1298678c72319c7ab39d7c266093
8c859c473bcdeec703916bdfd87614ba3d7dd02a6ce8006a81bf629d345966f0

HTTP Headers

GET /blobby/go/de353c41-c1e8-419f-9a2a-282b38e66838/gpub/99261ebf98d93f64/script.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 14674
x-version: 0.7.1+sha-f8fdc16
etag: "cd87c1dec336410582215d9d8f77e7f3"
last-modified: Wed, 03 Aug 2022 04:54:46 GMT
x-amzn-trace-id: Root=1-62e9ff95-4b422da37390977e708519bb
x-forwarded-port: 443
x-forwarded-for: 64.202.160.109
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/traffic-assets/js/tccl-tti.min.js

104.84.152.58

302 Found

0 B

URL HTTP/2
img1.wsimg.com/traffic-assets/js/tccl-tti.min.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /traffic-assets/js/tccl-tti.min.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
content-length: 0
location: https://img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js
cache-control: max-age=1800
expires: Sun, 11 Sep 2022 03:43:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-layout27-Theme-publish-Theme-426a6752.js

104.84.152.58

200 OK

4.6 kB

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-layout27-Theme-publish-Theme-426a6752.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (16777)
Size
4.6 kB (4562 bytes)
Hash
d63329ea260c74b51c21180eb99adae7
162e672cc76f510dba865c985957b2b3044a9e36
b6fe328b6e558265a5451ff68b42104fc106b99d42bc53589b8fb2c93e7f710d

HTTP Headers

GET /blobby/go/static/radpack/@widget/LAYOUT/bs-layout27-Theme-publish-Theme-426a6752.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 4562
x-version: 0.7.1+sha-f8fdc16
etag: "44e335030da6dc3f098e688fdf6829bb"
last-modified: Tue, 01 Feb 2022 21:21:58 GMT
x-amzn-trace-id: Root=1-61f9a475-1478ed6f223e1f061bde1bf3
x-forwarded-port: 443
x-forwarded-for: 64.202.160.106
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@widget/MESSAGING/bs-Component-3fa47963.js

104.84.152.58

200 OK

3.9 kB

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@widget/MESSAGING/bs-Component-3fa47963.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (13449)
Size
3.9 kB (3876 bytes)
Hash
ef73a2ad26978dc129780e9fa8b56fbf
a27b1e38a9b0a8a64eadac394393b44c34514433
31a27befad2953d262687734a98ecef2a590a1871ac87e093360ef29735381d2

HTTP Headers

GET /blobby/go/static/radpack/@widget/MESSAGING/bs-Component-3fa47963.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 3876
x-version: 0.7.1+sha-f8fdc16
etag: "e135455abac1e365c75acb29427be2bd"
last-modified: Wed, 30 Mar 2022 21:06:30 GMT
x-amzn-trace-id: Root=1-6244c654-23bec5f97d8cb44d046c9a3f
x-forwarded-port: 443
x-forwarded-for: 64.202.160.108
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-_rollupPluginBabelHelpers-5d5d5aa3.js

104.84.152.58

200 OK

370 B

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-_rollupPluginBabelHelpers-5d5d5aa3.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (496)
Size
370 B (370 bytes)
Hash
20749e6818020e6b30cf08cc4300e71d
b51dfdd30d9677c8d55ec143ec82fcf74cbe24a5
1d8bd329e92f264fd82351b136b1037013c5b7ec341884661f8c9b8541a1d2c6

HTTP Headers

GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-_rollupPluginBabelHelpers-5d5d5aa3.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 370
x-version: 0.7.1+sha-f8fdc16
etag: "a520cd4748a46d1b83fb4f4d7d1fefa8"
last-modified: Thu, 14 Oct 2021 23:04:33 GMT
x-amzn-trace-id: Root=1-6168b780-70e67b486fc3323d35a71972
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-humanisticFilled-231afaba.js

104.84.152.58

200 OK

4.8 kB

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-humanisticFilled-231afaba.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (12251)
Size
4.8 kB (4754 bytes)
Hash
073844563d47ee85e1c4cd973e49fb82
773fb31946c4b8b47eabaf2a0f16232707558b26
6c9f13042a7ab9ef9cde2b670910c4cf83d3c3f4ef0003ed12575ed6869c8c87

HTTP Headers

GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-humanisticFilled-231afaba.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 4754
x-version: 0.7.1+sha-f8fdc16
etag: "9f94046aea26739ac8888a6d3ed17e16"
last-modified: Thu, 14 Oct 2021 23:04:37 GMT
x-amzn-trace-id: Root=1-6168b784-518004aa22c71fe9760b296c
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-index-d15d4cb0.js

104.84.152.58

200 OK

579 B

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-index-d15d4cb0.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (829)
Size
579 B (579 bytes)
Hash
a35fc2506c2f855bb96a61b6699268e7
b70a15c22c5bb0f41deba263468e5ffd462a2ec7
3957ccba82ae77c1f4b8241fdd2b10eb226d001b9280b5a928581c7e38cd3267

HTTP Headers

GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-index-d15d4cb0.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 579
x-version: 0.7.1+sha-f8fdc16
etag: "f806faab29346709aa36f154927b3ac6"
last-modified: Thu, 14 Oct 2021 23:04:34 GMT
x-amzn-trace-id: Root=1-6168b781-363fae662be9e06319f5a063
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-index3-98b416a8.js

104.84.152.58

200 OK

58 kB

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-index3-98b416a8.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (65536), with no line terminators
Size
58 kB (58295 bytes)
Hash
30e057d7f362544072a7e35362837c34
077e2d7cc1698cb80211ed8546c93d1aa9000dbc
1de499780b54db25dfd9fc1d77202d511a5175ea63c8aa17037cb5556750ad22

HTTP Headers

GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-index3-98b416a8.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 58295
x-version: 0.7.1+sha-f8fdc16
etag: "e0201f84421293da324b0057e86fe74a"
last-modified: Thu, 28 Jul 2022 19:30:36 GMT
x-amzn-trace-id: Root=1-62e2e3db-723b36273c4dfffd08f32895
x-forwarded-port: 443
x-forwarded-for: 64.202.160.107
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-loaders-fffeeba5.js

104.84.152.58

200 OK

740 B

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-loaders-fffeeba5.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (3043)
Size
740 B (740 bytes)
Hash
ef933bdbde5407473165c8076c400033
a4ed7ffc21e649f1a7463021892a1f7d7ef8275b
c7a5729828eef458dec3177ba83479f77c11ef943d44d407fa8d82067d3afb83

HTTP Headers

GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-loaders-fffeeba5.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 740
x-version: 0.7.1+sha-f8fdc16
etag: "852cbc5322260e00b44f2c682f88b2c7"
last-modified: Thu, 14 Oct 2021 23:04:41 GMT
x-amzn-trace-id: Root=1-6168b788-04e31f272fd746490d747855
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-minimalSocialIconPack-367b65a4.js

104.84.152.58

200 OK

6.7 kB

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-minimalSocialIconPack-367b65a4.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (19615)
Size
6.7 kB (6724 bytes)
Hash
4ce2ee26b7bfd92534ac48544ac05330
76ac71090fcbe1f2192fab56a5a312c2ea4b7f72
b7faa0c6048431108b5c1ec65a3cb7c674e3618f16fbd0c39318307a3137ad41

HTTP Headers

GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-minimalSocialIconPack-367b65a4.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 6724
x-version: 0.7.1+sha-f8fdc16
etag: "5fd30bb38eba06e3522ae28610ac8c74"
last-modified: Thu, 14 Oct 2021 23:04:38 GMT
x-amzn-trace-id: Root=1-6168b785-0155fcbf6cbeb78d408f219e
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-overlayTypes-e1dbe765.js

104.84.152.58

200 OK

335 B

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-overlayTypes-e1dbe765.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (383)
Size
335 B (335 bytes)
Hash
21f75a3937961a662b8d8879193c440c
4b1ed44a75627896d16fa62b335c445470b014a7
84559c119581a7d097957055082a3d95fb9af3043cd3237f27756d3332eeba76

HTTP Headers

GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-overlayTypes-e1dbe765.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 335
x-version: 0.7.1+sha-f8fdc16
etag: "21ad22788e6caa18a4e9e57f7372b108"
last-modified: Mon, 13 Dec 2021 22:59:02 GMT
x-amzn-trace-id: Root=1-61b7d035-018188ae176241301ebce646
x-forwarded-port: 443
x-forwarded-for: 64.202.160.105
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/common/constants/traffic2-f4096148.js

104.84.152.58

200 OK

430 B

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/common/constants/traffic2-f4096148.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (651)
Size
430 B (430 bytes)
Hash
2bd483e0e1dbe2726d090c9581c8ca85
95fa1b87ddf4027b4223b06e86932d788aba2636
205d0e1c2faf95cb7b22234abcad7abae243b799ea1d790288ddfee6e46a6ad9

HTTP Headers

GET /blobby/go/static/radpack/@wsb/guac-widget-shared/lib/common/constants/traffic2-f4096148.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 430
x-version: 0.7.1+sha-f8fdc16
etag: "56b37779e560b1f33dae335fcdf417e5"
last-modified: Tue, 01 Dec 2020 17:54:55 GMT
x-amzn-trace-id: Root=1-5fc6836e-274d6c4c70fec5b058af7bae
x-forwarded-port: 443
x-forwarded-for: 64.202.160.107
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/Recaptcha/badge-a479b038.js

104.84.152.58

200 OK

367 B

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/Recaptcha/badge-a479b038.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
367 B (367 bytes)
Hash
a5c6e41c09faadb3c1c61691d2095174
aad16c94df292aa072454c6fdc55e1774153229b
cb15a1744276298a8303612901f1b85d9d773663c5c591cb128b98e2bb25166f

HTTP Headers

GET /blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/Recaptcha/badge-a479b038.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 367
x-version: 0.7.1+sha-f8fdc16
etag: "8857679c4bd7c2c9238416f452bed34f"
last-modified: Wed, 21 Oct 2020 02:55:22 GMT
x-amzn-trace-id: Root=1-5f8fa319-4467925d4bc512bd5d8610c2
x-forwarded-port: 443
x-forwarded-for: 64.202.160.104
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/Carousel-d4bbd8a7.js

104.84.152.58

200 OK

7.1 kB

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/Carousel-d4bbd8a7.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (19989)
Size
7.1 kB (7054 bytes)
Hash
61db91671b34870b2a22649bae7a75e5
e2394e915aeb66badba97fa50307e74ad5769daa
4ffb98b3cecca59fc757b51e44016322380bd6bc56c37cb350a54bee6e5894dc

HTTP Headers

GET /blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/Carousel-d4bbd8a7.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 7054
x-version: 0.7.1+sha-f8fdc16
etag: "e579cd3f9ea8e112675b529fc85417c3"
last-modified: Tue, 26 Jul 2022 18:34:15 GMT
x-amzn-trace-id: Root=1-62e033a6-2a4cf0c1004db6f253765cdc
x-forwarded-port: 443
x-forwarded-for: 64.202.160.107
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/ColorSwatch-fad18f03.js

104.84.152.58

200 OK

640 B

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/ColorSwatch-fad18f03.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (1206)
Size
640 B (640 bytes)
Hash
d8559c34c802e249732729dc2e3e4d67
8b350b4fddfbf8a93bf924693b74da1461c18d38
16cb67f04c24caa52d02cbf94e9e97080262edba721871e3e2a5482c54392dcd

HTTP Headers

GET /blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/ColorSwatch-fad18f03.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 640
x-version: 0.7.1+sha-f8fdc16
etag: "54f17c61775c71ad74e89f6ca7d47649"
last-modified: Fri, 10 Dec 2021 22:26:46 GMT
x-amzn-trace-id: Root=1-61b3d425-4196caee6b9445880f09a33c
x-forwarded-port: 443
x-forwarded-for: 64.202.160.105
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-dataAids-6a839d53.js

104.84.152.58

200 OK

626 B

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-dataAids-6a839d53.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (1824)
Size
626 B (626 bytes)
Hash
11370164b73124ea595098d2ecbe6d0b
bcc349130116ef2aee6ed77984b7726b43af8576
d2a8fc6601e5e3b7c457e6c56f225547618fb5b454ba5dd37082cfa67ab4453e

HTTP Headers

GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-dataAids-6a839d53.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 626
x-version: 0.7.1+sha-f8fdc16
etag: "edc15ad5daac3cfa744bffdb1e0174be"
last-modified: Mon, 13 Dec 2021 22:59:00 GMT
x-amzn-trace-id: Root=1-61b7d033-2da3a4b6382be71e0d8c5ecb
x-forwarded-port: 443
x-forwarded-for: 64.202.160.105
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-index2-5a810c82.js

104.84.152.58

200 OK

713 B

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-index2-5a810c82.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (1352)
Size
713 B (713 bytes)
Hash
bd42473bb0a3a779c914acfc4f145dc8
6387121e6d129824962b8eceb8d87164860129fe
e75a09ece643bd3d554ff8f6aa8939a64e48da7f355be43760ea7149bf4b9049

HTTP Headers

GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-index2-5a810c82.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 713
x-version: 0.7.1+sha-f8fdc16
etag: "da82f14f261b7847fc0bc55dac30a9b3"
last-modified: Mon, 13 Dec 2021 22:59:04 GMT
x-amzn-trace-id: Root=1-61b7d037-31e2e89a06b12bc27efaa2ca
x-forwarded-port: 443
x-forwarded-for: 64.202.160.105
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-navigationDrawer-27f5f1f5.js

104.84.152.58

200 OK

191 B

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-navigationDrawer-27f5f1f5.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
191 B (191 bytes)
Hash
cec9b0814a648933ea94f34556da96ab
b1633975363116ff254ad319b033a1022d483922
cb8d0e2233b2d495612d7644089dec2bcb7b3d02d7ccb775df3b8ca4a995a9f8

HTTP Headers

GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-navigationDrawer-27f5f1f5.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 191
x-version: 0.7.1+sha-f8fdc16
etag: "8f12765eb30fbdcfcdc116d13f7fc272"
last-modified: Thu, 28 Jul 2022 17:59:29 GMT
x-amzn-trace-id: Root=1-62e2ce80-4ef8fc4a33c151912970138f
x-forwarded-port: 443
x-forwarded-for: 64.202.160.107
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-searchFormLocations-c86f2a99.js

104.84.152.58

200 OK

244 B

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-searchFormLocations-c86f2a99.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
244 B (244 bytes)
Hash
835256b0b1680833155abf0f7420cca2
1d7eca7af4c7fdc66cfe34c1796ce7c3376d21b3
b876ca1181efb3e0c9eac5384578fe015bc322c2a5407f4a86826374c86e4187

HTTP Headers

GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-searchFormLocations-c86f2a99.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 244
x-version: 0.7.1+sha-f8fdc16
etag: "daa79ad7558674f6a12d962abf47f2f6"
last-modified: Thu, 14 Oct 2021 23:04:37 GMT
x-amzn-trace-id: Root=1-6168b784-1438c006715eea557e6c9f7f
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_commonjsHelpers-758665cc.js

104.84.152.58

200 OK

518 B

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_commonjsHelpers-758665cc.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (905)
Size
518 B (518 bytes)
Hash
45e169dc10f78234504ee292d5fbc13c
6ce99366de7d5a6aa2d72870696c10dec16d56e9
b4bf979d5e9ca93f7c5e1736d1c90d0662d37a6c360c7e30ed0f06e65b080694

HTTP Headers

GET /blobby/go/static/radpack/@wsb/guac-widget-shared/c/_commonjsHelpers-758665cc.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 518
x-version: 0.7.1+sha-f8fdc16
etag: "894d1fecf13beb6804e454d74bab4fc5"
last-modified: Thu, 20 May 2021 16:49:33 GMT
x-amzn-trace-id: Root=1-60a6931c-2dfc069918f926cb337de793
x-forwarded-port: 443
x-forwarded-for: 64.202.160.111
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_react_commonjs-external-3d5a31a2.js

104.84.152.58

200 OK

212 B

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_react_commonjs-external-3d5a31a2.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
212 B (212 bytes)
Hash
83df0b1b683dfb124c68705dfc76fcee
5cc0c7157c31f32d14cb1b4b1da6b1a824c2d112
7a4f6de8c05928fa839dd4bca96e2c2088c92d942f1a9f285832edea5580ef48

HTTP Headers

GET /blobby/go/static/radpack/@wsb/guac-widget-shared/c/_react_commonjs-external-3d5a31a2.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 212
x-version: 0.7.1+sha-f8fdc16
etag: "889d83416d141ae9c1e8e3eb5c4f68c0"
last-modified: Wed, 24 Feb 2021 19:34:55 GMT
x-amzn-trace-id: Root=1-6036aa5e-4e3aabaf2f33643a300f2279
x-forwarded-port: 443
x-forwarded-for: 64.202.160.111
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_rollupPluginBabelHelpers-92db7618.js

104.84.152.58

200 OK

376 B

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_rollupPluginBabelHelpers-92db7618.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (501)
Size
376 B (376 bytes)
Hash
59ae8ad50c2d5a071cf77710bd85bfdf
2ee00b76c41a0d13f258d9dc44484fbe0a3b8524
f439a3d1fc52de6c8049f20077eba81e70489d73bd117253d6e06755fb368aff

HTTP Headers

GET /blobby/go/static/radpack/@wsb/guac-widget-shared/c/_rollupPluginBabelHelpers-92db7618.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 376
x-version: 0.7.1+sha-f8fdc16
etag: "95e155e942e2f3d810d854bd7baf8f04"
last-modified: Wed, 24 Feb 2021 19:34:54 GMT
x-amzn-trace-id: Root=1-6036aa5d-248bcb407aeca8241d304317
x-forwarded-port: 443
x-forwarded-for: 64.202.160.108
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/interopRequireDefault-112e3bdc.js

104.84.152.58

200 OK

255 B

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/interopRequireDefault-112e3bdc.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
255 B (255 bytes)
Hash
c193577695c55a6d01f99c001d244ae9
f5bfc578e3b68fa149e0ec505036883dde2e2182
5960984c09db3ab6275b0c5f58fbaa9423d07e95b248630115506387428f03f8

HTTP Headers

GET /blobby/go/static/radpack/@wsb/guac-widget-shared/c/interopRequireDefault-112e3bdc.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 255
x-version: 0.7.1+sha-f8fdc16
etag: "11ccc819361ff3f58653d84601c90234"
last-modified: Tue, 09 Mar 2021 21:39:32 GMT
x-amzn-trace-id: Root=1-6047eb13-42a9ed893514533d651f3c03
x-forwarded-port: 443
x-forwarded-for: 64.202.160.111
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-LinkAwareComponent-c879a9d1.js

104.84.152.58

200 OK

891 B

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-LinkAwareComponent-c879a9d1.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (1875)
Size
891 B (891 bytes)
Hash
44a9beb87d40f6145cb908a9b1c71c00
a6f805ddcc53b7cb5ab774de344c30c41d4d5ce0
aaad2d68eb5062983443ff7a7d607dff5035cfd75a719742d2a0d95af37b89e0

HTTP Headers

GET /blobby/go/static/radpack/@widget/LAYOUT/bs-LinkAwareComponent-c879a9d1.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 891
x-version: 0.7.1+sha-f8fdc16
etag: "db9b98d640eba155278db0bbaa83050d"
last-modified: Tue, 08 Mar 2022 16:16:57 GMT
x-amzn-trace-id: Root=1-62278178-78898aaa78d117a566634235
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-FlyoutMenu-Component-266b929e.js

104.84.152.58

200 OK

1.3 kB

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-FlyoutMenu-Component-266b929e.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (3283)
Size
1.3 kB (1272 bytes)
Hash
15588eb49730af3f92b29fa295d0a216
eb61fae6f935f037beebca9f2557ce05a32212b6
acce03ab4359514251cfe658c86746d82f01160cf1fb6d779a264410fa8d5e7c

HTTP Headers

GET /blobby/go/static/radpack/@widget/LAYOUT/bs-FlyoutMenu-Component-266b929e.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 1272
x-version: 0.7.1+sha-f8fdc16
etag: "d2f3f3bb13567c7c3ba8c50de05a8272"
last-modified: Mon, 13 Dec 2021 22:59:00 GMT
x-amzn-trace-id: Root=1-61b7d033-2b00d29f0bf8ee864a58d40c
x-forwarded-port: 443
x-forwarded-for: 64.202.160.105
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-Toggle-bde2cb32.js

104.84.152.58

200 OK

1.0 kB

URL HTTP/2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-Toggle-bde2cb32.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (2368)
Size
1.0 kB (1020 bytes)
Hash
f781ac203e2b685fc34dff85b2e11b50
43f27a48b1b29ea644e6a4da46aca1dc0c4cd794
fac7178c58b529a9e5f2af5ce88aeb912245e1f39fa39a877116cbf75da0ff2f

HTTP Headers

GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-Toggle-bde2cb32.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 1020
x-version: 0.7.1+sha-f8fdc16
etag: "70bc240b39fd393f6e3003cc69e4fe73"
last-modified: Fri, 29 Jul 2022 16:58:40 GMT
x-amzn-trace-id: Root=1-62e411bf-092c235955a8dd6b4bde9a5a
x-forwarded-port: 443
x-forwarded-for: 64.202.160.109
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:30 GMT
date: Sun, 11 Sep 2022 03:13:30 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js

104.84.152.58

200 OK

7.5 kB

URL HTTP/2
img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (24676)
Size
7.5 kB (7498 bytes)
Hash
b8a5a228a358454084c34dd1cf431c61
37aa5fe6e083b8147156ca66a1993a7bd74e8a61
06fae5ccf58a27a8e2ae6a0e7722f42db507c1873751f587cddd090810d94492

HTTP Headers

GET /wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://genaikerr.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "ce554d2333f3801abafb32da18213ff7"
last-modified: Wed, 16 Jun 2021 22:03:01 GMT
vary: Accept-Encoding
x-edgeconnect-midmile-rtt: 3
x-edgeconnect-origin-mex-latency: 654
x-amz-id-2: Bt3x3iTv8Fk+aaaS+GUkBMe+ASr0HEMDh339t8gjL9ozG+jBiKIjzxbTtgmm6ZRh5XVuxORtokQ=
x-amz-request-id: XNK8Z8KQATPTCZRH
x-amz-server-side-encryption: AES256
x-amz-version-id: F4fYptXBkP0fCCCWFLfVGE1HXlZmORny
content-length: 7498
x-edgeconnect-cache-status: 1
cache-control: max-age=31536000
date: Sun, 11 Sep 2022 03:13:30 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/isteam/ip/de353c41-c1e8-419f-9a2a-282b38e66838/blob-0002.png/:/rs=w:180,h:180,m

104.84.152.58

200 OK

2.2 kB

URL HTTP/2
img1.wsimg.com/isteam/ip/de353c41-c1e8-419f-9a2a-282b38e66838/blob-0002.png/:/rs=w:180,h:180,m
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
2.2 kB (2174 bytes)
Hash
b2207d8c562063384a4ef905bd73bbe6
135b245d8cba6c7f437d4b73e5f6981050ccdbe3
61041a2882f824067162204cef5da204a3c06755a6b2421793b83d7373581533

HTTP Headers

GET /isteam/ip/de353c41-c1e8-419f-9a2a-282b38e66838/blob-0002.png/:/rs=w:180,h:180,m HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/webp
content-length: 2174
x-version: 0.4.4+sha-cbf667a
x-track-origin-referer: https://genaikerr.com/
access-control-request-method: GET
access-control-max-age: 864000
etag: 1274967940
x-width: 180
x-height: 180
x-isteam-meta: {"orientation":1}
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 03:13:31 GMT
date: Sun, 11 Sep 2022 03:13:31 GMT
edge-cache-tag: /isteam/ip/de353c41-c1e8-419f-9a2a-282b38e66838/blob-0002.png/:/rs=w:180,h:180,m
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

events.api.secureserver.net/t/1/tl/event?cts=1662866000332&dh=genaikerr.com&dr=&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=2132032856&cv=2.0.0&z=226431317&vg=b0e65c2c-27bb-527d-ad78-c5fbc992f1be&vtg=b0e65c2c-27bb-527d-ad78-c5fbc992f1be&dp=%2Fhynv4d.tar&ap=IPv2&trfd=%7B%22ap%22%3A%22IPv2%22%2C%22websiteId%22%3A%22de353c41-c1e8-419f-9a2a-282b38e66838%22%2C%22pd%22%3A%222022-08-03T04%3A54%3A44.724Z%22%2C%22meta.numWidgets%22%3A4%2C%22meta.theme%22%3A%22layout27%22%2C%22meta.headerMediaType%22%3A%22Image%22%2C%22meta.isOLS%22%3Afalse%2C%22meta.isOLA%22%3Afalse%2C%22meta.isMembership%22%3Afalse%7D&hit_id=74567c5d-ba5b-542c-b704-9311e4d3b8b8&ht=pageview

104.84.152.58

200 OK

43 B

URL HTTP/2
events.api.secureserver.net/t/1/tl/event?cts=1662866000332&dh=genaikerr.com&dr=&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=2132032856&cv=2.0.0&z=226431317&vg=b0e65c2c-27bb-527d-ad78-c5fbc992f1be&vtg=b0e65c2c-27bb-527d-ad78-c5fbc992f1be&dp=%2Fhynv4d.tar&ap=IPv2&trfd=%7B%22ap%22%3A%22IPv2%22%2C%22websiteId%22%3A%22de353c41-c1e8-419f-9a2a-282b38e66838%22%2C%22pd%22%3A%222022-08-03T04%3A54%3A44.724Z%22%2C%22meta.numWidgets%22%3A4%2C%22meta.theme%22%3A%22layout27%22%2C%22meta.headerMediaType%22%3A%22Image%22%2C%22meta.isOLS%22%3Afalse%2C%22meta.isOLA%22%3Afalse%2C%22meta.isMembership%22%3Afalse%7D&hit_id=74567c5d-ba5b-542c-b704-9311e4d3b8b8&ht=pageview
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

HTTP Headers

GET /t/1/tl/event?cts=1662866000332&dh=genaikerr.com&dr=&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=2132032856&cv=2.0.0&z=226431317&vg=b0e65c2c-27bb-527d-ad78-c5fbc992f1be&vtg=b0e65c2c-27bb-527d-ad78-c5fbc992f1be&dp=%2Fhynv4d.tar&ap=IPv2&trfd=%7B%22ap%22%3A%22IPv2%22%2C%22websiteId%22%3A%22de353c41-c1e8-419f-9a2a-282b38e66838%22%2C%22pd%22%3A%222022-08-03T04%3A54%3A44.724Z%22%2C%22meta.numWidgets%22%3A4%2C%22meta.theme%22%3A%22layout27%22%2C%22meta.headerMediaType%22%3A%22Image%22%2C%22meta.isOLS%22%3Afalse%2C%22meta.isOLA%22%3Afalse%2C%22meta.isMembership%22%3Afalse%7D&hit_id=74567c5d-ba5b-542c-b704-9311e4d3b8b8&ht=pageview HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://genaikerr.com
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Sun, 11 Sep 2022 03:13:31 GMT
X-Firefox-Spdy: h2

events.api.secureserver.net/t/1/tl/event?cts=1662866000334&dh=genaikerr.com&dr=&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=2132032856&cv=2.0.0&z=78593386&vg=b0e65c2c-27bb-527d-ad78-c5fbc992f1be&vtg=b0e65c2c-27bb-527d-ad78-c5fbc992f1be&dp=%2Fhynv4d.tar&ap=IPv2&trfd=%7B%22ap%22%3A%22IPv2%22%2C%22websiteId%22%3A%22de353c41-c1e8-419f-9a2a-282b38e66838%22%2C%22pd%22%3A%222022-08-03T04%3A54%3A44.724Z%22%2C%22meta.numWidgets%22%3A4%2C%22meta.theme%22%3A%22layout27%22%2C%22meta.headerMediaType%22%3A%22Image%22%2C%22meta.isOLS%22%3Afalse%2C%22meta.isOLA%22%3Afalse%2C%22meta.isMembership%22%3Afalse%7D&hit_id=f61b8fca-c1c5-5f55-9c43-f69ef4964787&ht=pageevent&ea=impression&eid=pandc.vnext.404.impression

104.84.152.58

200 OK

43 B

URL HTTP/2
events.api.secureserver.net/t/1/tl/event?cts=1662866000334&dh=genaikerr.com&dr=&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=2132032856&cv=2.0.0&z=78593386&vg=b0e65c2c-27bb-527d-ad78-c5fbc992f1be&vtg=b0e65c2c-27bb-527d-ad78-c5fbc992f1be&dp=%2Fhynv4d.tar&ap=IPv2&trfd=%7B%22ap%22%3A%22IPv2%22%2C%22websiteId%22%3A%22de353c41-c1e8-419f-9a2a-282b38e66838%22%2C%22pd%22%3A%222022-08-03T04%3A54%3A44.724Z%22%2C%22meta.numWidgets%22%3A4%2C%22meta.theme%22%3A%22layout27%22%2C%22meta.headerMediaType%22%3A%22Image%22%2C%22meta.isOLS%22%3Afalse%2C%22meta.isOLA%22%3Afalse%2C%22meta.isMembership%22%3Afalse%7D&hit_id=f61b8fca-c1c5-5f55-9c43-f69ef4964787&ht=pageevent&ea=impression&eid=pandc.vnext.404.impression
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

HTTP Headers

GET /t/1/tl/event?cts=1662866000334&dh=genaikerr.com&dr=&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=2132032856&cv=2.0.0&z=78593386&vg=b0e65c2c-27bb-527d-ad78-c5fbc992f1be&vtg=b0e65c2c-27bb-527d-ad78-c5fbc992f1be&dp=%2Fhynv4d.tar&ap=IPv2&trfd=%7B%22ap%22%3A%22IPv2%22%2C%22websiteId%22%3A%22de353c41-c1e8-419f-9a2a-282b38e66838%22%2C%22pd%22%3A%222022-08-03T04%3A54%3A44.724Z%22%2C%22meta.numWidgets%22%3A4%2C%22meta.theme%22%3A%22layout27%22%2C%22meta.headerMediaType%22%3A%22Image%22%2C%22meta.isOLS%22%3Afalse%2C%22meta.isOLA%22%3Afalse%2C%22meta.isMembership%22%3Afalse%7D&hit_id=f61b8fca-c1c5-5f55-9c43-f69ef4964787&ht=pageevent&ea=impression&eid=pandc.vnext.404.impression HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://genaikerr.com
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Sun, 11 Sep 2022 03:13:31 GMT
X-Firefox-Spdy: h2

events.api.secureserver.net/t/1/tl/event?cts=1662866000540&dh=genaikerr.com&dr=&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=2132032856&cv=2.0.0&z=242599875&vg=b0e65c2c-27bb-527d-ad78-c5fbc992f1be&vtg=b0e65c2c-27bb-527d-ad78-c5fbc992f1be&dp=%2Fhynv4d.tar&ap=IPv2&trfd=%7B%22ap%22%3A%22IPv2%22%2C%22websiteId%22%3A%22de353c41-c1e8-419f-9a2a-282b38e66838%22%2C%22pd%22%3A%222022-08-03T04%3A54%3A44.724Z%22%2C%22meta.numWidgets%22%3A4%2C%22meta.theme%22%3A%22layout27%22%2C%22meta.headerMediaType%22%3A%22Image%22%2C%22meta.isOLS%22%3Afalse%2C%22meta.isOLA%22%3Afalse%2C%22meta.isMembership%22%3Afalse%7D&hit_id=9901e5d6-6d4d-52f8-a704-7c2dd6dbd7b6&ht=perf&tce=1662865999415&tcs=1662865999241&tdc=1662866000536&tdclee=1662866000339&tdcles=1662866000335&tdi=1662866000326&tdl=1662865999458&tdle=1662865999241&tdls=1662865999238&tfs=1662865999237&tns=1662865998793&trqs=1662865999415&tre=1662865999458&trps=1662865999450&tles=1662866000536&tlee=0&nt=navigate&nav_type=hard

104.84.152.58

200 OK

43 B

URL HTTP/2
events.api.secureserver.net/t/1/tl/event?cts=1662866000540&dh=genaikerr.com&dr=&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=2132032856&cv=2.0.0&z=242599875&vg=b0e65c2c-27bb-527d-ad78-c5fbc992f1be&vtg=b0e65c2c-27bb-527d-ad78-c5fbc992f1be&dp=%2Fhynv4d.tar&ap=IPv2&trfd=%7B%22ap%22%3A%22IPv2%22%2C%22websiteId%22%3A%22de353c41-c1e8-419f-9a2a-282b38e66838%22%2C%22pd%22%3A%222022-08-03T04%3A54%3A44.724Z%22%2C%22meta.numWidgets%22%3A4%2C%22meta.theme%22%3A%22layout27%22%2C%22meta.headerMediaType%22%3A%22Image%22%2C%22meta.isOLS%22%3Afalse%2C%22meta.isOLA%22%3Afalse%2C%22meta.isMembership%22%3Afalse%7D&hit_id=9901e5d6-6d4d-52f8-a704-7c2dd6dbd7b6&ht=perf&tce=1662865999415&tcs=1662865999241&tdc=1662866000536&tdclee=1662866000339&tdcles=1662866000335&tdi=1662866000326&tdl=1662865999458&tdle=1662865999241&tdls=1662865999238&tfs=1662865999237&tns=1662865998793&trqs=1662865999415&tre=1662865999458&trps=1662865999450&tles=1662866000536&tlee=0&nt=navigate&nav_type=hard
IP
104.84.152.58:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

HTTP Headers

GET /t/1/tl/event?cts=1662866000540&dh=genaikerr.com&dr=&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=2132032856&cv=2.0.0&z=242599875&vg=b0e65c2c-27bb-527d-ad78-c5fbc992f1be&vtg=b0e65c2c-27bb-527d-ad78-c5fbc992f1be&dp=%2Fhynv4d.tar&ap=IPv2&trfd=%7B%22ap%22%3A%22IPv2%22%2C%22websiteId%22%3A%22de353c41-c1e8-419f-9a2a-282b38e66838%22%2C%22pd%22%3A%222022-08-03T04%3A54%3A44.724Z%22%2C%22meta.numWidgets%22%3A4%2C%22meta.theme%22%3A%22layout27%22%2C%22meta.headerMediaType%22%3A%22Image%22%2C%22meta.isOLS%22%3Afalse%2C%22meta.isOLA%22%3Afalse%2C%22meta.isMembership%22%3Afalse%7D&hit_id=9901e5d6-6d4d-52f8-a704-7c2dd6dbd7b6&ht=perf&tce=1662865999415&tcs=1662865999241&tdc=1662866000536&tdclee=1662866000339&tdcles=1662866000335&tdi=1662866000326&tdl=1662865999458&tdle=1662865999241&tdls=1662865999238&tfs=1662865999237&tns=1662865998793&trqs=1662865999415&tre=1662865999458&trps=1662865999450&tles=1662866000536&tlee=0&nt=navigate&nav_type=hard HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://genaikerr.com
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://genaikerr.com
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Sun, 11 Sep 2022 03:13:31 GMT
X-Firefox-Spdy: h2

genaikerr.com/sw.js

160.153.136.3

200 OK

11 kB

URL HTTP/2
genaikerr.com/sw.js
IP
160.153.136.3:0
ASN
#21501 Host Europe GmbH

File type
data
Size
11 kB (10902 bytes)
Hash
867ccd7372fa020f977e9e0512df49f8
26d550870ec14275afe75f4642dfa3399c484441
f78af0b74dfeeb642207d00b9ccdbfe87288a39be190a279dbab63e1279d1434

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /sw.js HTTP/1.1
Host: genaikerr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: dps_site_id=4000; _tccl_visitor=b0e65c2c-27bb-527d-ad78-c5fbc992f1be; _tccl_visit=b0e65c2c-27bb-527d-ad78-c5fbc992f1be
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
link: <https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin
cache-control: max-age=30
content-security-policy: frame-ancestors 'self'
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
server: DPS/1.13.2
x-siteid: 4000
set-cookie: dps_site_id=4000; path=/; secure
etag: 00488de6123ed11d02e2b43b364a2b53
date: Sun, 11 Sep 2022 03:13:30 GMT
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9662
Expires: Sun, 11 Sep 2022 05:54:33 GMT
Date: Sun, 11 Sep 2022 03:13:31 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9662
Expires: Sun, 11 Sep 2022 05:54:33 GMT
Date: Sun, 11 Sep 2022 03:13:31 GMT
Connection: keep-alive

genaikerr.com/privacy-policy

160.153.136.3

200 OK

18 kB

URL HTTP/2
genaikerr.com/privacy-policy
IP
160.153.136.3:0
ASN
#21501 Host Europe GmbH

File type
data
Size
18 kB (18281 bytes)
Hash
d3709105b1cffc0e2e7f1cfde40f822b
5e8518cd2e2584b5029033f1a9b0c2d00cb8f7df
0c174c39dddce74eb1185c0bf4d26a1e3af750608fd3ec65a326e8bb075b58fd

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /privacy-policy HTTP/1.1
Host: genaikerr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://genaikerr.com/sw.js
Connection: keep-alive
Cookie: dps_site_id=4000; _tccl_visitor=b0e65c2c-27bb-527d-ad78-c5fbc992f1be; _tccl_visit=b0e65c2c-27bb-527d-ad78-c5fbc992f1be
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
link: <//img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.25.3.js>; rel=preload; as=script; crossorigin,<https://img1.wsimg.com/gfonts/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk5hkWVAewA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0RkyFjWVAewA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVI.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4gaVI.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2>; rel=preload; as=font; crossorigin,<https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin
cache-control: max-age=30
content-security-policy: frame-ancestors 'self'
content-type: text/html;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
server: DPS/1.13.2
x-siteid: 4000
set-cookie: dps_site_id=4000; path=/; secure
etag: 7aec44de69a2426945f8eab514c96851
date: Sun, 11 Sep 2022 03:13:31 GMT
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e82f3ab-3fe6-43bc-932c-936ec582e5cf.jpeg

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e82f3ab-3fe6-43bc-932c-936ec582e5cf.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (7017 bytes)
Hash
fea5dfc4a6a5093fd81899ee4a79d446
c893d7475856809a59486e0bcebd6d662d1fc56f
915fb97690be97d97cb298fc60ceb4cf7c3ed8fb437836beb2d590a8e238363c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e82f3ab-3fe6-43bc-932c-936ec582e5cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7017
x-amzn-requestid: df5e57d7-e54c-4b5a-aa1b-a9aee889842e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_Et0oAMFSjQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-50d15bba03579a935342e22f;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: YRgmbTGaMvU9Kf47U90cPYhgpXaYgoNVA8ut6LOUStK4UfWahpSqVA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:41:08 GMT
age: 19943
etag: "c893d7475856809a59486e0bcebd6d662d1fc56f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481e7fcb-66df-4e59-8130-9579a79eca9c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7635 bytes)
Hash
4ec2646c56c4c522f0744768ad20342b
ad1d9eee90556a359547dc7cbb6758aee2c804cd
0bf9eaa4420bf6290535fd23895c6c723c7de6b849995ba83774532862cfe8b4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481e7fcb-66df-4e59-8130-9579a79eca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7635
x-amzn-requestid: dbd07cc7-d0f6-4500-83c6-b19fa9fa2e3d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xt5xDEfUIAMFYXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630f09a0-3771b23118f3711e5caca699;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 07:11:28 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ILut4hEDJbs6jNr3wpPST1HgAYMabIT7cdZebRFETn8lL_QfS92KBA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 00:50:01 GMT
age: 8610
etag: "ad1d9eee90556a359547dc7cbb6758aee2c804cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.1 kB (6109 bytes)
Hash
8c35b7f5f8e1b0b24570a41b7d18533a
c5b82c9d77851820b8d206573d5c03cd36d27a20
bb2456b31c48e6ebc9595c2bb9972b74531e93dd02ec4571d5af614f2d116ec7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6109
x-amzn-requestid: 271b006e-9d17-46ba-9eed-22fd638c4e9e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ2AhHZgIAMFlSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d039c-444e7d6b22f2a08f7215a986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:37:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rnkjEbkwVPPR1stEuMkkuFcQ4WZMDjsuYKA46ZcxejvotwfCG6huhQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:43:03 GMT
age: 19828
etag: "c5b82c9d77851820b8d206573d5c03cd36d27a20"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe41cdec0-ceff-4e9c-88a7-3a5565f1a459.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.8 kB (5752 bytes)
Hash
12666d69f9af3ceb23fdfc2100bd3226
c4d17e3ea44ef6dee9819c1586424e5f056f149c
054236a4d1f88a486f48b8f3a8ac01d21ec2179d5b1f3fc9791d0982d07a88a2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe41cdec0-ceff-4e9c-88a7-3a5565f1a459.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5752
x-amzn-requestid: 622ffff0-1bd5-4eb4-a9ff-eb54c5ae44a7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YBrqiFiToAMF0tA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6316f310-49efdcc572b4fad3543f857d;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 07:13:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: VKsU4S6tKOso216JLUWn7b1bKDyfruIVukt98JooNCjwaXDT9bkPYQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 19:50:13 GMT
age: 26598
etag: "c4d17e3ea44ef6dee9819c1586424e5f056f149c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13568 bytes)
Hash
8625e0707046e7a3715a8dbb40b1cae2
0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78
abc4c12561be08897341d9c8104c30a289357c0907e55c46895f7fb6afb2f75d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13568
x-amzn-requestid: ad06f499-3e04-414a-8a3f-6daa9e0124ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3yN1F2BIAMFoqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312fd8b-3a17f11440d2f37b23ac7f6a;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 07:08:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: iNRnq8nMhoTo9oY379Ynb6uPW0vNyf3dNufU_HpXNfzxvhrAEKEzJQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 14:09:02 GMT
age: 47069
etag: "0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

genaikerr.com/my-story

160.153.136.3

200 OK

0 B

URL HTTP/2
genaikerr.com/my-story
IP
160.153.136.3:0
ASN
#21501 Host Europe GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /my-story HTTP/1.1
Host: genaikerr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://genaikerr.com/sw.js
Connection: keep-alive
Cookie: dps_site_id=4000; _tccl_visitor=b0e65c2c-27bb-527d-ad78-c5fbc992f1be; _tccl_visit=b0e65c2c-27bb-527d-ad78-c5fbc992f1be
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
link: <//img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.25.3.js>; rel=preload; as=script; crossorigin,<https://img1.wsimg.com/gfonts/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk5hkWVAewA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0RkyFjWVAewA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVI.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4gaVI.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2>; rel=preload; as=font; crossorigin,<https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin
cache-control: max-age=30
content-security-policy: frame-ancestors 'self'
content-type: text/html;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
server: DPS/1.13.2
x-siteid: 4000
set-cookie: dps_site_id=4000; path=/; secure
etag: ed0b690e688f816897a61d7c2d2ad887
date: Sun, 11 Sep 2022 03:13:31 GMT
X-Firefox-Spdy: h2

genaikerr.com/

160.153.136.3

200 OK

0 B

URL HTTP/2
genaikerr.com/
IP
160.153.136.3:0
ASN
#21501 Host Europe GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: genaikerr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://genaikerr.com/sw.js
Connection: keep-alive
Cookie: dps_site_id=4000; _tccl_visitor=b0e65c2c-27bb-527d-ad78-c5fbc992f1be; _tccl_visit=b0e65c2c-27bb-527d-ad78-c5fbc992f1be
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
link: <//img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.25.3.js>; rel=preload; as=script; crossorigin,<https://img1.wsimg.com/gfonts/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk5hkWVAewA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0RkyFjWVAewA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVI.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4gaVI.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2>; rel=preload; as=font; crossorigin,<https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin
cache-control: max-age=30
content-security-policy: frame-ancestors 'self'
content-type: text/html;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
server: DPS/1.13.2
x-siteid: 4000
set-cookie: dps_site_id=4000; path=/; secure
etag: a37b03dc634ba1ad22c4da87a71f469b
date: Sun, 11 Sep 2022 03:13:31 GMT
X-Firefox-Spdy: h2

www.genaikerr.com/hynv4d.tar

160.153.136.3

302 Found

0 B

URL HTTP/1.1
www.genaikerr.com/hynv4d.tar
IP
160.153.136.3:0
ASN
#21501 Host Europe GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /hynv4d.tar HTTP/1.1
Host: www.genaikerr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Connection: close
Pragma: no-cache
cache-control: no-cache
Location: /hynv4d.tar

genaikerr.com/favicon.ico

160.153.136.3

404 Not Found

0 B

URL HTTP/2
genaikerr.com/favicon.ico
IP
160.153.136.3:0
ASN
#21501 Host Europe GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: genaikerr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://genaikerr.com/hynv4d.tar
Cookie: dps_site_id=4000; _tccl_visitor=b0e65c2c-27bb-527d-ad78-c5fbc992f1be; _tccl_visit=b0e65c2c-27bb-527d-ad78-c5fbc992f1be
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
link: <//img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.25.3.js>; rel=preload; as=script; crossorigin,<https://img1.wsimg.com/gfonts/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk5hkWVAewA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0RkyFjWVAewA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVI.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4gaVI.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2>; rel=preload; as=font; crossorigin,<https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin
cache-control: max-age=30
content-security-policy: frame-ancestors 'self'
content-type: text/html;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
server: DPS/1.13.2
x-siteid: 4000
set-cookie: dps_site_id=4000; path=/; secure
date: Sun, 11 Sep 2022 03:13:30 GMT
X-Firefox-Spdy: h2

cdn.reamaze.com/assets/reamaze-godaddy-loader.js

172.67.28.250

200 OK

0 B

URL HTTP/2
cdn.reamaze.com/assets/reamaze-godaddy-loader.js
IP
172.67.28.250:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/reamaze-godaddy-loader.js HTTP/1.1
Host: cdn.reamaze.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://genaikerr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 11 Sep 2022 03:13:30 GMT
content-type: application/javascript
last-modified: Wed, 07 Sep 2022 21:29:55 GMT
etag: W/"22e-5e81d038fbac0"
cache-control: public, max-age=600, s-maxage=604800
cf-cache-status: HIT
age: 268573
vary: Accept-Encoding
server: cloudflare
cf-ray: 748d3a582a6b0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (33)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations